critical
10
CWE
94 95
Advisory Published
CVE Published
Updated

CVE-2023-35152: XWiki Platform vulnerable to privilege escalation (PR) from account through like LiveTableResults

First published: Tue Jun 20 2023(Updated: )

### Impact Any logged in user can add dangerous content in their first name field and see it executed with programming rights. Leading to rights escalation. ### Patches The vulnerability has been fixed on XWiki 14.4.8, 14.10.6, and 15.1. ### Workarounds The vulnerability can be fixed by applying this [patch](https://github.com/xwiki/xwiki-platform/commit/6ce2d04a5779e07f6d3ed3f37d4761049b4fc3ac#diff-ef7f8b911bb8e584fda22aac5876a329add35ca0d1d32e0fdb62a439b78cfa49). On versions before 13.4-rc-1, the fix needs to be applied on [XWiki.Like.Code.LiveTableResultPage](https://github.com/xwiki/xwiki-platform/commit/0993a7ab3c102f9ac37ffe361a83a3dc302c0e45#diff-0b51114cb27f7a5c599cf40c59d658eae6ddc5c0836532c3b35e163f40a4854fR39). ### References - The reported issue https://jira.xwiki.org/browse/XWIKI-20611, fixed by https://jira.xwiki.org/browse/XWIKI-19900 - The patch https://github.com/xwiki/xwiki-platform/commit/6ce2d04a5779e07f6d3ed3f37d4761049b4fc3ac#diff-ef7f8b911bb8e584fda22aac5876a329add35ca0d1d32e0fdb62a439b78cfa49 ### For more information If you have any questions or comments about this advisory: * Open an issue in [Jira XWiki.org](https://jira.xwiki.org/) * Email us at [Security Mailing List](mailto:security@xwiki.org)

Credit: security-advisories@github.com security-advisories@github.com

Affected SoftwareAffected VersionHow to fix
Xwiki Xwiki>=12.9<14.4.8
Xwiki Xwiki>=14.10<14.10.6
Xwiki Xwiki=12.9-rc1
Xwiki Xwiki=15.0
Xwiki Xwiki=15.0-rc1
maven/org.xwiki.platform:xwiki-platform-like-ui>=15.0-rc-1<15.1
15.1
maven/org.xwiki.platform:xwiki-platform-like-ui>=14.5<14.10.6
14.10.6
maven/org.xwiki.platform:xwiki-platform-like-ui>=12.9-rc-1<14.4.8
14.4.8

Remedy

https://github.com/xwiki/xwiki-platform/commit/0993a7ab3c102f9ac37ffe361a83a3dc302c0e45#diff-0b51114cb27f7a5c599cf40c59d658eae6ddc5c0836532c3b35e163f40a4854fR39

Remedy

https://github.com/xwiki/xwiki-platform/commit/6ce2d04a5779e07f6d3ed3f37d4761049b4fc3ac#diff-ef7f8b911bb8e584fda22aac5876a329add35ca0d1d32e0fdb62a439b78cfa49

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2023-35152?

    CVE-2023-35152 is a vulnerability in XWiki Platform that allows any logged in user to add dangerous content in their first name field and execute it with programming rights, leading to rights escalation.

  • How severe is CVE-2023-35152?

    CVE-2023-35152 has a severity score of 8.8 (critical).

  • Which versions of XWiki Platform are affected by CVE-2023-35152?

    Versions 12.9-rc-1 to 14.4.8, 14.10.6, 15.0, and 15.0-rc1 of XWiki Platform are affected by CVE-2023-35152.

  • How can I fix CVE-2023-35152?

    To fix CVE-2023-35152, you should upgrade to XWiki Platform versions 14.4.8, 14.10.6, 15.0, or 15.0-rc1.

  • Are there any references for CVE-2023-35152?

    Yes, you can find more information about CVE-2023-35152 at the following references: [Link 1](https://github.com/xwiki/xwiki-platform/commit/0993a7ab3c102f9ac37ffe361a83a3dc302c0e45#diff-0b51114cb27f7a5c599cf40c59d658eae6ddc5c0836532c3b35e163f40a4854fR39), [Link 2](https://github.com/xwiki/xwiki-platform/commit/6ce2d04a5779e07f6d3ed3f37d4761049b4fc3ac#diff-ef7f8b911bb8e584fda22aac5876a329add35ca0d1d32e0fdb62a439b78cfa49), [Link 3](https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-rf8j-q39g-7xfm).

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203